Lucene search
K

16 matches found

NVD
NVD
added 2026/03/20 12:16 a.m.6 views

CVE-2026-32757

Admidio is an open-source user management solution. In versions 5.0.6 and below, the eCard send handler uses a raw $POST'ecardmessage' value instead of the HTMLPurifier-sanitized $formValues'ecardmessage' when constructing the greeting card HTML. This allows an authenticated attacker to inject...

5.4CVSS0.00227EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/19 11:12 p.m.4 views

CVE-2026-32757

Admidio is an open-source user management solution. In versions 5.0.6 and below, the eCard send handler uses a raw $POST'ecardmessage' value instead of the HTMLPurifier-sanitized $formValues'ecardmessage' when constructing the greeting card HTML. This allows an authenticated attacker to inject...

5.4CVSS5.8AI score0.00227EPSS
Exploits1References3Affected Software1
Openbugbounty
Openbugbounty
added 2017/05/12 2:32 p.m.12 views

fuerteventura-alternativ.de XSS vulnerability

Vulnerable URL: https://www.fuerteventura-alternativ.de/en/Greeting-cards/Landscapes-and-towns/Landscapes-and-towns.html?page=ecardform=05betancuria.jpg%22--!%3E%3CSvg/Onload=confirmOPENBUGBOUNTY%3E%22name=email=name=email= Details: Description| Value ---|--- Patched:| No Latest check for patch:|...

6.3AI score
Exploits0
CISA
CISA
added 2017/04/11 12:0 a.m.8 views

Easter Holiday Phishing Scams and Malware Campaigns

As the Easter holiday approaches, US-CERT reminds users to stay aware of holiday scams and cyber campaigns, which may include: unsolicited shipping notifications that may actually be scams by attackers to solicit personal information phishing scams, electronic greeting cards that may contain...

6.6AI score
Exploits0References5
hackapp
hackapp
added 2016/04/01 9:21 a.m.6 views

New Year Greeting Cards - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Greeting Cards published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:8 a.m.8 views

The Card Shop : Greeting Cards - Customized SSL, Dynamic Code Loading, Exported components vulnerabilities

HackApp vulnerability scanner discovered that application The Card Shop : Greeting Cards published at the 'play' market has multiple vulnerabilities...

Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:7 a.m.14 views

Greeting Cards All Occasions - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Greeting Cards All Occasions published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:7 a.m.9 views

New Year 2016 Greeting Cards - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year 2016 Greeting Cards published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:6 a.m.7 views

New Year Greeting Cards - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Greeting Cards published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
CISA
CISA
added 2014/04/09 12:0 a.m.12 views

Easter Holiday Phishing Scams and Malware Campaigns

As the Easter holiday approaches, US-CERT reminds users to stay aware of holiday scams and cyber campaigns, which may include: shipping notifications that may be phishing scams or may contain malware electronic greeting cards that may contain malware requests for charitable contributions that may...

6.7AI score
Exploits0References6
CISA
CISA
added 2013/11/19 12:0 a.m.10 views

Holiday Season Phishing Scams and Malware Campaigns

As the winter holidays approach, US-CERT reminds users to stay aware of seasonal scams and cyber campaigns, which may include: electronic greeting cards that may contain malware requests for charitable contributions that may be phishing scams and may originate from illegitimate sources claiming t...

6.7AI score
Exploits0References7
Vulnerability Lab
Vulnerability Lab
added 2011/11/01 12:0 a.m.21 views

Facebook Holi Greeting Cards - SQL Injection Vulnerability

Document Title: =============== Facebook Holi Greeting Cards - SQL Injection Vulnerability References Source: ==================== Facebook 3rd Party Application - Holi Greeting Cards 2011/Q2 Release Date: ============= 2011-11-01 Vulnerability Laboratory ID VL-ID:...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/11/01 12:0 a.m.17 views

Facebook Holi Greeting Cards - SQL Injection Vulnerability

Document Title: =============== Facebook Holi Greeting Cards - SQL Injection Vulnerability References Source: ==================== Facebook 3rd Party Application - Holi Greeting Cards 2011/Q2 Release Date: ============= 2011-11-01 Vulnerability Laboratory ID VL-ID:...

0.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/10/27 12:0 a.m.16 views

Facebook New Year Scraps - SQL Injection Vulnerability

Document Title: =============== Facebook New Year Scraps - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=274 Release Date: ============= 2011-10-27 Vulnerability Laboratory ID VL-ID: ==================================== 274...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/10/27 12:0 a.m.21 views

Facebook New Year Scraps - SQL Injection Vulnerability

Document Title: =============== Facebook New Year Scraps - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=274 Release Date: ============= 2011-10-27 Vulnerability Laboratory ID VL-ID: ==================================== 274...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/01/10 12:0 a.m.25 views

Egreetings v1.0 b Remote Database Disclosure Vulnerability

Exploit for unknown platform in category web applications ========================================================== Egreetings v1.0 b Remote Database Disclosure Vulnerability ========================================================== » Script: Egreetings » Language: ASP » Site page: Systeme d...

7.1AI score
Exploits0
Rows per page
Query Builder